Cross-site scripting(XSS)


Cross-site scripting(XSS) An attack is a type of injection where an attacker uses a malicious script. Cross-site scripting has two stages, first, the attacker finds a way to inject malicious code into the web page the victim visits, then the victim must visit the web page with the malicious code. If there is a specific victim attacker target, social engineering or phishing can be used to send malicious URLs to the victim.

 



Comments

Post a Comment

Popular posts from this blog

Qlocker

Image
     A massive ransomware campaign is underway against QNAP devices around the world, and users are finding that their files are now stored in password-protected 7zip archives.The ransomware, called Qlocker, began targeting QNAP devices.QNAP warned that the attackers were exploiting the CVE-2021-28799 hard-coded credentials vulnerability in the HBS 3 Hybrid Backup Sync app to hack into users' devices and lock their files.  https://petri.com/qnap-nas-devices-being-targeted-by-qlocker-ransomware-again
Read more

SunCrypt

Image
Ransomware operates in organized businesses, and some developers of ransomware have expanded into franchises. One such franchise family member refers to themselves as SunC rypt. SunCrypt was one of the early pioneers of triple extortion,, including file encryption, the threat of releasing stolen data, and a DDoS (distributed denial of service) attack against non-paying victims. SunCrypt often uses the PowerShell loader for delivery and deployment. https://thecyberwire.com/newsletters/privacy-briefing/4/61
Read more

Blockchain Security Issues

Image
  Security is one of the advantages that Bitcoin and its derivatives (e.g., Ethereum, Ripple, etc.) claim to offer compared to other digital payments. In fact, disrupting the Bitcoin network and other blockchain technologies is nearly impossible due to its advanced architecture and complexity. However,hackers are still eager to exploit some workarounds for t h eir ill intension https://onlinedegrees.und.edu/blog/5-blockchain-security-issues/
Read more